Skip to content

update weekly #1140

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 334 commits into from
Apr 16, 2025
Merged

update weekly #1140

merged 334 commits into from
Apr 16, 2025

Conversation

gounthar
Copy link
Collaborator

No description provided.

github-actions bot and others added 30 commits October 6, 2024 08:50
@github-actions
chore: deps(dockerfile): bump image "gitpod/workspace-full" (#685)
3c5144e 
Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@github-actions
chore: deps(dockerfile): bump image "gitpod/workspace-full" (#687)
1dac37c 
Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@gounthar
chore(jenkins): Update Jenkins plugins (#688)
a438ae4
@gounthar
chore(jenkins): Update Jenkins plugins (#692)
e782d7f
@gounthar
chore(jenkins): Update Jenkins plugins (#694)
f6e051e
@github-actions
chore: deps(dockerfile): bump image "gitpod/workspace-full" (#695)
8636bb9 
Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@gounthar
chore(jenkins): Update Jenkins plugins (#699)
67fb698
@dependabot
chore(deps): bump anchore/scan-action from 4.1.2 to 5.0.0 (#700)
8458ec6 
Bumps [anchore/scan-action](https://github.com/anchore/scan-action) from 4.1.2 to 5.0.0.
- [Release notes](https://github.com/anchore/scan-action/releases)
- [Changelog](https://github.com/anchore/scan-action/blob/main/CHANGELOG.md)
- [Commits](anchore/scan-action@64a33b2...4e08a16)

---
updated-dependencies:
- dependency-name: anchore/scan-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@gounthar
chore(jenkins): Update Jenkins plugins (#701)
d24c684
@gounthar
chore(jenkins): Update Jenkins plugins (#703)
6255775
@gounthar
chore(jenkins): Update Jenkins plugins (#706)
e7e5d0d
@github-actions
chore: deps(dockerfile): bump image "debian" (#707)
bc320ab 
Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@gounthar
chore(jenkins): Update Jenkins plugins (#710)
10174ee
@github-actions
chore: deps(dockerfile): bump image "gitpod/workspace-full" (#712)
91b60e3 
Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump anchore/scan-action from 5.0.0 to 5.1.0 (#714)
5b415af 
Bumps [anchore/scan-action](https://github.com/anchore/scan-action) from 5.0.0 to 5.1.0.
- [Release notes](https://github.com/anchore/scan-action/releases)
- [Changelog](https://github.com/anchore/scan-action/blob/main/CHANGELOG.md)
- [Commits](anchore/scan-action@4e08a16...ef0b0b0)

---
updated-dependencies:
- dependency-name: anchore/scan-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@github-actions
chore: deps(dockerfile): bump image "gitpod/workspace-full" (#715)
29e2bd9 
Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@gounthar
chore(jenkins): Update Jenkins plugins (#716)
a036ee4
@github-actions
chore: deps(dockerfile): bump image "gitpod/workspace-full" (#717)
44dfed5 
Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@github-actions
Bump ssh-agent version to 6.1.0 (#718)
ff0fa53 
* chore: [jenkins/ssh-agent] Bump Docker image tag in "dockerfiles/mave...

... n/Dockerfile"

Made with ❤️️ by updatecli

* chore: [jenkins/ssh-agent] Bump Docker image tag in "dockerfiles/mult...

... i/Dockerfile"

Made with ❤️️ by updatecli

* chore: [jenkins/ssh-agent] Bump Docker image tag in "dockerfiles/node...

... /Dockerfile"

Made with ❤️️ by updatecli

* chore: [jenkins/ssh-agent] Bump Docker image tag in "dockerfiles/pyth...

... on/Dockerfile"

Made with ❤️️ by updatecli

* chore: [jenkins/ssh-agent] Bump Docker image tag in "build-docker-com...

... pose.yaml"

Made with ❤️️ by updatecli

* chore: [jenkins/ssh-agent] Bump Docker image tag in "docker-compose.y...

... aml"

Made with ❤️️ by updatecli

* chore: [jenkins/ssh-agent] Bump Docker image tag in "dockerfiles/gola...

... ng/Dockerfile"

Made with ❤️️ by updatecli

* chore: [jenkins/ssh-agent] Bump Docker image tag in "dockerfiles/andr...

... oid/Dockerfile"

Made with ❤️️ by updatecli

---------

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@gounthar
chore(jenkins): Update Jenkins plugins (#724)
3ddf3b0
@github-actions
chore: deps(dockerfile): bump image "gitpod/workspace-full" (#725)
db840e4 
Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@gounthar
chore(jenkins): Update Jenkins plugins (#729)
3002bdc
@github-actions
chore: deps(dockerfile): bump image "gitpod/workspace-full" (#731)
7d53b2b 
Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@gounthar
chore(jenkins): Update Jenkins plugins (#733)
e128a15
@gounthar
chore(jenkins): Update Jenkins plugins (#735)
a80c3de
@github-actions
chore: deps(dockerfile): bump image "gitpod/workspace-full" (#736)
55dd6cb 
Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@github-actions
chore: [jenkins-controller] Bump Jenkins LTS version in dockerfiles/D…
fafa70a 
…... (#737)

... ockerfile

Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@github-actions
chore: [node-agent] Bump node version in dockerfiles/maven/Dockerfile (
173c293 
…#738)

Made with ❤️️ by updatecli

Co-authored-by: GitHub Actions <41898282+github-actions[bot]@users.noreply.github.com>
@gounthar
chore(jenkins): Update Jenkins plugins (#743)
780d381
@gounthar
chore(jenkins): Update Jenkins plugins (#745)
b5aa1e1
github-advanced-security[bot]
github-advanced-security bot found potential problems Apr 16, 2025
View reviewed changes
extract-profiles.sh
# Check if the service has dependencies
if yq e ".services.${service}.depends_on" "$original_file" -e > /dev/null; then
# Read dependencies of the service
local dependencies=($(yq e ".services.${service}.depends_on | keys" "$original_file" -o json | jq -r '.[]'))

Check notice

Code scanning / Shellcheck (reported by Codacy)

Prefer mapfile or read -a to split command output (or quote to avoid splitting). Note

Prefer mapfile or read -a to split command output (or quote to avoid splitting).
extract-profiles.sh
declare -A all_dependencies
services=$(yq e '.services | keys' "$original_file" -o json | jq -r '.[]')
for service in $services; do
dependencies=$(yq e ".services.$service.depends_on | keys" "$original_file" -o json | jq -r '.[]')

Check notice

Code scanning / Shellcheck (reported by Codacy)

Variable was used as an array but is now assigned a string. Note

Variable was used as an array but is now assigned a string.
extract-profiles.sh
services=$(yq e '.services | keys' "$original_file" -o json | jq -r '.[]')
for service in $services; do
dependencies=$(yq e ".services.$service.depends_on | keys" "$original_file" -o json | jq -r '.[]')
for dependency in $dependencies; do

Check notice

Code scanning / Shellcheck (reported by Codacy)

Expanding an array without an index only gives the first element. Note

Expanding an array without an index only gives the first element.
extract-profiles.sh
for service in $services; do
dependencies=$(yq e ".services.$service.depends_on | keys" "$original_file" -o json | jq -r '.[]')
for dependency in $dependencies; do
all_dependencies["$dependency"]=1

Check notice

Code scanning / Shellcheck (reported by Codacy)

all_dependencies appears unused. Verify use (or export if used externally). Note

all_dependencies appears unused. Verify use (or export if used externally).
extract-profiles.sh

# Generate the docker-compose file for the profile
echo "Generating docker-compose-$profile.yaml"
yq e ".services | with_entries(select(.key as \$k | .key == \"$included_services_list\"))" "$original_file" > "docker-compose-$profile.yaml"

Check notice

Code scanning / Shellcheck (reported by Codacy)

included_services_list is referenced but not assigned. Note

included_services_list is referenced but not assigned.
github-advanced-security[bot]
github-advanced-security bot found potential problems Apr 16, 2025
View reviewed changes
dockerfiles/cpp/Dockerfile
FROM jenkins/ssh-agent:6.12.0-jdk21

# Install necessary C++ build tools
RUN apt-get update && apt-get install -y --no-install-recommends \

Check notice

Code scanning / Hadolint (reported by Codacy)

Pin versions in apt get install. Instead of apt-get install <package> use apt-get install <package>=<version> Note

Pin versions in apt get install. Instead of apt-get install <package> use apt-get install <package>=<version>
dockerfiles/dotnet/Dockerfile
FROM jenkins/ssh-agent:6.12.0-jdk21 AS ssh-agent

# install dotnet dependencies
RUN apt-get update && apt-get install -y --no-install-recommends libc6 libgcc1 libgssapi-krb5-2 libicu72 libssl3 libstdc++6 zlib1g wget && apt-get clean && \

Check notice

Code scanning / Hadolint (reported by Codacy)

Pin versions in apt get install. Instead of apt-get install <package> use apt-get install <package>=<version> Note

Pin versions in apt get install. Instead of apt-get install <package> use apt-get install <package>=<version>
github-advanced-security[bot]
github-advanced-security bot found potential problems Apr 16, 2025
View reviewed changes
.github/workflows/github-docker-registry-push.yml
- name: Build and push the jenkins agent for cpp tutorial
# This step builds and pushes the Jenkins agent for the C++ tutorial
if: contains(env.files, 'dockerfiles/cpp/Dockerfile')
uses: docker/build-push-action@v6

Check warning

Code scanning / Semgrep (reported by Codacy)

An action sourced from a third-party repository on GitHub is not pinned to a full length commit SHA. Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Warning

An action sourced from a third-party repository on GitHub is not pinned to a full length commit SHA. Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release.
.github/workflows/github-docker-registry-push.yml
- name: Build and push the jenkins agent for dotnet tutorial
# This step builds and pushes the Jenkins agent for the C++ tutorial
if: contains(env.files, 'dockerfiles/dotnet/Dockerfile')
uses: docker/build-push-action@v6

Check warning

Code scanning / Semgrep (reported by Codacy)

An action sourced from a third-party repository on GitHub is not pinned to a full length commit SHA. Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Warning

An action sourced from a third-party repository on GitHub is not pinned to a full length commit SHA. Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release.
.github/workflows/updatecli.yaml
@@ -23,7 +23,7 @@

# This step installs Updatecli in the runner using the updatecli-action
- name: Install Updatecli in the runner
uses: updatecli/updatecli-action@v2.62.0
uses: updatecli/updatecli-action@v2.82.0

Check warning

Code scanning / Semgrep (reported by Codacy)

An action sourced from a third-party repository on GitHub is not pinned to a full length commit SHA. Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Warning

An action sourced from a third-party repository on GitHub is not pinned to a full length commit SHA. Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release.
@gounthar gounthar merged commit b957059 into weekly Apr 16, 2025
7 of 11 checks passed
@gounthar gounthar deleted the fixes branch April 16, 2025 09:13
This was referenced May 9, 2025
Closed
Closed
Closed
Closed
Closed
This was referenced May 20, 2025
Closed
Closed
Closed
This was referenced Jun 2, 2025
Closed
Closed
Closed
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
android maven_tutorial multi nodejs python_tutorial repo
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@gounthar @berviantoleo